owen
/
dogcraft-discord-wiki-bot
mirror of https://github.com/odiffey/discord-wiki-bot


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407
							const {randomBytes} = require('crypto');
const cheerio = require('cheerio');
const {defaultPermissions} = require('../util/default.json');
const Wiki = require('../util/wiki.js');
const allLangs = require('./i18n.js').allLangs().names;
const {got, db, oauth, enabledOAuth2, sessionData, settingsData, oauthVerify, sendMsg, addWidgets, createNotice, hasPerm} = require('./util.js');

const file = require('fs').readFileSync('./dashboard/login.html');

/**
 * Let a user login
 * @param {import('http').ServerResponse} res - The server response
 * @param {import('./i18n.js')} dashboardLang - The user language.
 * @param {String} theme - The display theme
 * @param {String} [state] - The user state
 * @param {String} [action] - The action the user made
 */
function dashboard_login(res, dashboardLang, theme, state, action) {
	if ( state && sessionData.has(state) ) {
		if ( !action ) {
			res.writeHead(302, {Location: '/'});
			return res.end();
		}
		sessionData.delete(state);
	}
	var $ = cheerio.load(file);
	$('html').attr('lang', dashboardLang.lang);
	if ( theme === 'light' ) $('html').addClass('theme-light');
	$('<script>').text(`
		const selectLanguage = '${dashboardLang.get('general.language').replace( /'/g, '\\$&' )}';
		const allLangs = ${JSON.stringify(allLangs)};
	`).insertBefore('script#langjs');
	$('head title').text(dashboardLang.get('general.login') + ' – ' + dashboardLang.get('general.title'));
	$('#login-button span, .channel#login div').text(dashboardLang.get('general.login'));
	$('.channel#login').attr('title', dashboardLang.get('general.login'));
	$('.channel#invite-wikibot div').text(dashboardLang.get('general.invite'));
	$('.channel#invite-wikibot').attr('title', dashboardLang.get('general.invite'));
	$('.guild#invite a').attr('alt', dashboardLang.get('general.invite'));
	$('.guild#theme-dark a').attr('alt', dashboardLang.get('general.theme-dark'));
	$('.guild#theme-light a').attr('alt', dashboardLang.get('general.theme-light'));
	$('#support span').text(dashboardLang.get('general.support'));
	$('#text .description #welcome').html(dashboardLang.get('general.welcome'));
	let responseCode = 200;
	let prompt = 'none';
	if ( process.env.READONLY ) createNotice($, 'readonly', dashboardLang);
	if ( action ) createNotice($, action, dashboardLang);
	if ( action === 'unauthorized' ) $('<script>').text('history.replaceState(null, null, "/login");').appendTo('head');
	else if ( action.startsWith( 'oauth' ) ) {
		if ( action === 'oauth' ) createNotice($, 'oauthlogin', dashboardLang);
		$('<script>').text('history.replaceState(null, null, "/user");').appendTo('head');
	}
	if ( action === 'logout' ) prompt = 'consent';
	if ( action === 'loginfail' ) responseCode = 400;
	state = Date.now().toString(16) + randomBytes(16).toString('hex');
	while ( sessionData.has(state) ) {
		state = Date.now().toString(16) + randomBytes(16).toString('hex');
	}
	let invite = oauth.generateAuthUrl( {
		scope: ['identify', 'guilds', 'bot', 'applications.commands'],
		permissions: defaultPermissions, state
	} );
	$('.guild#invite a, .channel#invite-wikibot').attr('href', invite);
	let url = oauth.generateAuthUrl( {
		scope: ['identify', 'guilds'],
		prompt, state
	} );
	$('.channel#login, #login-button').attr('href', url);
	addWidgets($, dashboardLang);
	let body = $.html();
	res.writeHead(responseCode, {
		'Set-Cookie': [
			...( res.getHeader('Set-Cookie') || [] ),
			`wikibot="${state}"; HttpOnly; SameSite=Lax; Path=/; Max-Age=31536000`
		],
		'Content-Length': Buffer.byteLength(body)
	});
	res.write( body );
	return res.end();
}

/**
 * Load oauth data of a user
 * @param {import('http').ServerResponse} res - The server response
 * @param {String} state - The user state
 * @param {URLSearchParams} searchParams - The url parameters
 * @param {String} [lastGuild] - The guild to return to
 */
function dashboard_oauth(res, state, searchParams, lastGuild) {
	if ( searchParams.get('error') === 'access_denied' && state === searchParams.get('state') && sessionData.has(state) ) {
		res.writeHead(302, {Location: '/'});
		return res.end();
	}
	if ( state !== searchParams.get('state') || !searchParams.get('code') ) {
		res.writeHead(302, {Location: '/login?action=failed'});
		return res.end();
	}
	sessionData.delete(state);
	return oauth.tokenRequest( {
		scope: ['identify', 'guilds'],
		code: searchParams.get('code'),
		grantType: 'authorization_code'
	} ).then( ({access_token}) => {
		return Promise.all([
			oauth.getUser(access_token),
			oauth.getUserGuilds(access_token)
		]).then( ([user, guilds]) => {
			guilds = guilds.filter( guild => {
				return ( guild.owner || hasPerm(guild.permissions, 'MANAGE_GUILD') );
			} ).map( guild => {
				return {
					id: guild.id,
					name: guild.name,
					acronym: guild.name.replace( /'s /g, ' ' ).replace( /\w+/g, e => e[0] ).replace( /\s/g, '' ),
					icon: ( guild.icon ? `https://cdn.discordapp.com/icons/${guild.id}/${guild.icon}.`
					+ ( guild.icon.startsWith( 'a_' ) ? 'gif' : 'png' ) : null ),
					userPermissions: guild.permissions
				};
			} );
			sendMsg( {
				type: 'getGuilds',
				member: user.id,
				guilds: guilds.map( guild => guild.id )
			} ).then( response => {
				var userSession = {
					state: `${state}-${user.id}`,
					access_token,
					user_id: user.id
				};
				sessionData.set(userSession.state, userSession);
				/** @type {import('./util.js').Settings} */
				var settings = ( settingsData.has(user.id) ? settingsData.get(user.id) : {
					user: {},
					guilds: {}
				} );
				settings.user.id = user.id;
				settings.user.username = user.username;
				settings.user.discriminator = user.discriminator;
				settings.user.avatar = 'https://cdn.discordapp.com/' + ( user.avatar ? `avatars/${user.id}/${user.avatar}.` + ( user.avatar.startsWith( 'a_' ) ? 'gif' : 'png' ) : `embed/avatars/${user.discriminator % 5}.png` ) + '?size=64';
				settings.user.locale = user.locale;
				settings.guilds.count = guilds.length;
				/** @type {import('./util.js').Guild[]} */
				var isMemberGuilds = [];
				settings.guilds.notMember = new Map();
				response.forEach( (guild, i) => {
					if ( guild ) {
						if ( guild === 'noMember' ) return;
						isMemberGuilds.push(Object.assign(guilds[i], guild));
					}
					else settings.guilds.notMember.set(guilds[i].id, guilds[i]);
				} );
				settings.guilds.isMember = new Map(isMemberGuilds.sort( (a, b) => {
					return ( b.patreon - a.patreon || b.memberCount - a.memberCount );
				} ).map( guild => {
					return [guild.id, guild];
				} ));
				settingsData.set(user.id, settings);
				if ( searchParams.has('guild_id') && !lastGuild.startsWith( searchParams.get('guild_id') + '/' ) ) {
					lastGuild = searchParams.get('guild_id') + '/settings';
				}
				let returnLocation = '/';
				if ( lastGuild ) {
					if ( lastGuild === 'user' ) returnLocation += lastGuild;
					else if ( /^\d+\/(?:settings|verification|rcscript|slash)(?:\/(?:\d+|new|notice))?$/.test(lastGuild) ) returnLocation += 'guild/' + lastGuild;
				}
				res.writeHead(302, {
					Location: returnLocation,
					'Set-Cookie': [`wikibot="${userSession.state}"; HttpOnly; SameSite=Lax; Path=/; Max-Age=31536000`]
				});
				return res.end();
			}, error => {
				console.log( '- Dashboard: Error while getting the guilds:', error );
				res.writeHead(302, {Location: '/login?action=failed'});
				return res.end();
			} );
		}, error => {
			console.log( '- Dashboard: Error while getting user and guilds: ' + error );
			res.writeHead(302, {Location: '/login?action=failed'});
			return res.end();
		} );
	}, error => {
		console.log( '- Dashboard: Error while getting the token: ' + error );
		res.writeHead(302, {Location: '/login?action=failed'});
		return res.end();
	} );
}

/**
 * Reload the guild of a user
 * @param {import('http').ServerResponse} res - The server response
 * @param {import('./util.js').UserSession} userSession - The user session
 * @param {String} [returnLocation] - The return location
 */
function dashboard_refresh(res, userSession, returnLocation = '/') {
	return oauth.getUserGuilds(userSession.access_token).then( guilds => {
		guilds = guilds.filter( guild => {
			return ( guild.owner || hasPerm(guild.permissions, 'MANAGE_GUILD') );
		} ).map( guild => {
			return {
				id: guild.id,
				name: guild.name,
				acronym: guild.name.replace( /'s /g, ' ' ).replace( /\w+/g, e => e[0] ).replace( /\s/g, '' ),
				icon: ( guild.icon ? `https://cdn.discordapp.com/icons/${guild.id}/${guild.icon}.`
				+ ( guild.icon.startsWith( 'a_' ) ? 'gif' : 'png' ) : null ),
				userPermissions: guild.permissions
			};
		} );
		var settings = settingsData.get(userSession.user_id);
		sendMsg( {
			type: 'getGuilds',
			member: settings.user.id,
			guilds: guilds.map( guild => guild.id )
		} ).then( response => {
			settings.guilds.count = guilds.length;
			/** @type {import('./util.js').Guild[]} */
			var isMemberGuilds = [];
			settings.guilds.notMember = new Map();
			response.forEach( (guild, i) => {
				if ( guild ) {
					if ( guild === 'noMember' ) return;
					isMemberGuilds.push(Object.assign(guilds[i], guild));
				}
				else settings.guilds.notMember.set(guilds[i].id, guilds[i]);
			} );
			settings.guilds.isMember = new Map(isMemberGuilds.sort( (a, b) => {
				return ( b.patreon - a.patreon || b.memberCount - a.memberCount );
			} ).map( guild => {
				return [guild.id, guild];
			} ));
			res.writeHead(302, {Location: returnLocation + '?refresh=success'});
			return res.end();
		}, error => {
			console.log( '- Dashboard: Error while getting the refreshed guilds:', error );
			res.writeHead(302, {Location: returnLocation + '?refresh=failed'});
			return res.end();
		} );
	}, error => {
		console.log( '- Dashboard: Error while refreshing guilds: ' + error );
		res.writeHead(302, {Location: returnLocation + '?refresh=failed'});
		return res.end();
	} );
}

/**
 * Check if a wiki is availabe
 * @param {import('http').ServerResponse} res - The server response
 * @param {String} input - The wiki to check
 */
function dashboard_api(res, input) {
	var wiki = Wiki.fromInput('https://' + input + '/');
	var result = {
		api: true,
		error: false,
		error_code: '',
		wiki: wiki.href,
		base: '',
		sitename: '',
		logo: '',
		MediaWiki: false,
		RcGcDw: '',
		customRcGcDw: wiki.toLink('MediaWiki:Custom-RcGcDw', 'action=edit')
	};
	return got.get( wiki + 'api.php?&action=query&meta=allmessages|siteinfo&ammessages=custom-RcGcDw&amenableparser=true&siprop=general&format=json', {
		responseType: 'text'
	} ).then( response => {
		try {
			response.body = JSON.parse(response.body);
		}
		catch (error) {
			if ( response.statusCode === 404 && typeof response.body === 'string' ) {
				let api = cheerio.load(response.body)('head link[rel="EditURI"]').prop('href');
				if ( api ) {
					wiki = new Wiki(api.split('api.php?')[0], wiki);
					return got.get( wiki + 'api.php?action=query&meta=allmessages|siteinfo&ammessages=custom-RcGcDw&amenableparser=true&siprop=general&format=json' );
				}
			}
		}
		return response;
	} ).then( response => {
		var body = response.body;
		if ( response.statusCode !== 200 || body?.batchcomplete === undefined || !body?.query?.allmessages || !body?.query?.general ) {
			console.log( '- Dashboard: ' + response.statusCode + ': Error while checking the wiki: ' + body?.error?.info );
			if ( body?.error?.info === 'You need read permission to use this module.' ) {
				result.error_code = 'private';
			}
			result.error = true;
			return;
		}
		wiki.updateWiki(body.query.general);
		result.wiki = wiki.href;
		result.base = body.query.general.base;
		result.sitename = body.query.general.sitename;
		result.logo = body.query.general.logo;
		if ( body.query.general.generator.replace( /^MediaWiki 1\.(\d\d).*$/, '$1' ) >= 30 ) {
			result.MediaWiki = true;
		}
		if ( body.query.allmessages[0]['*'] ) {
			result.RcGcDw = body.query.allmessages[0]['*'];
		}
		result.customRcGcDw = wiki.toLink('MediaWiki:Custom-RcGcDw', 'action=edit');
		if ( wiki.isFandom() ) return;
	}, error => {
		if ( error.message?.startsWith( 'connect ECONNREFUSED ' ) || error.message?.startsWith( 'Hostname/IP does not match certificate\'s altnames: ' ) || error.message === 'certificate has expired' || error.message === 'self signed certificate' ) {
			console.log( '- Dashboard: Error while testing the wiki: No HTTPS' );
			result.error_code = 'http';
			result.error = true;
			return;
		}
		console.log( '- Dashboard: Error while checking the wiki: ' + error );
		if ( error.message === `Timeout awaiting 'request' for ${got.defaults.options.timeout.request}ms` ) {
			result.error_code = 'timeout';
		}
		result.error = true;
	} ).finally( () => {
		let body = JSON.stringify(result);
		res.writeHead(200, {
			'Content-Length': Buffer.byteLength(body),
			'Content-Type': 'application/json'
		});
		res.write( body );
		return res.end();
	} );
}

/**
 * Load oauth data of a wiki user
 * @param {import('http').ServerResponse} res - The server response
 * @param {URLSearchParams} searchParams - The url parameters
 * @param {String} [user_id] - The current user
 */
function mediawiki_oauth(res, searchParams, user_id) {
	if ( !searchParams.get('code') || !searchParams.get('state') ) {
		res.writeHead(302, {Location: '/user?oauth=failed'});
		return res.end();
	}
	var state = searchParams.get('state');
	var site = state.split(' ');
	var oauthSite = enabledOAuth2.find( oauthSite => ( site[2] || site[0] ) === oauthSite.id );
	if ( !oauthSite || ( !oauthVerify.has(state) && !user_id ) ) {
		res.writeHead(302, {Location: '/user?oauth=failed'});
		return res.end();
	}
	var url = oauthSite.url;
	if ( oauthVerify.has(state) && site[2] === oauthSite.id ) url = 'https://' + site[0] + '/';
	got.post( url + 'rest.php/oauth2/access_token', {
		form: {
			grant_type: 'authorization_code',
			code: searchParams.get('code'),
			redirect_uri: new URL('/oauth/mw', process.env.dashboard).href,
			client_id: process.env['oauth_' + oauthSite.id],
			client_secret: process.env['oauth_' + oauthSite.id + '_secret']
		}
	} ).then( response => {
		var body = response.body;
		if ( response.statusCode !== 200 || !body?.access_token ) {
			console.log( '- Dashboard: ' + response.statusCode + ': Error while getting the mediawiki token: ' + ( body?.message || body?.error ) );
			res.writeHead(302, {Location: '/user?oauth=failed'});
			return res.end();
		}
		if ( !oauthVerify.has(state) ) {
			if ( !body?.refresh_token || !user_id ) {
				res.writeHead(302, {Location: '/user?oauth=failed'});
				return res.end();
			}
			return db.query( 'INSERT INTO oauthusers(userid, site, token) VALUES($1, $2, $3)', [user_id, oauthSite.id, body.refresh_token] ).then( () => {
				console.log( '- Dashboard: OAuth2 token for ' + user_id + ' successfully saved.' );
				res.writeHead(302, {Location: '/user?oauth=success'});
				return res.end();
			}, dberror => {
				console.log( '- Dashboard: Error while saving the OAuth2 token for ' + user_id + ': ' + dberror );
				res.writeHead(302, {Location: '/user?oauth=failed'});
				return res.end();
			} );
		}
		sendMsg( {
			type: 'verifyUser', state,
			access_token: body.access_token
		} ).then( () => {
			let userid = oauthVerify.get(state);
			if ( userid && body?.refresh_token ) db.query( 'INSERT INTO oauthusers(userid, site, token) VALUES($1, $2, $3)', [userid, oauthSite.id, body.refresh_token] ).then( () => {
				console.log( '- Dashboard: OAuth2 token for ' + userid + ' successfully saved.' );
			}, dberror => {
				console.log( '- Dashboard: Error while saving the OAuth2 token for ' + userid + ': ' + dberror );
			} );
			oauthVerify.delete(state);
			if ( !userid ) res.writeHead(302, {Location: '/user?oauth=verified'});
			else if ( user_id && userid !== user_id ) res.writeHead(302, {Location: '/user?oauth=other'});
			else res.writeHead(302, {Location: '/user?oauth=success'});
			return res.end();
		}, error => {
			console.log( '- Dashboard: Error while sending the mediawiki token: ' + error );
			res.writeHead(302, {Location: '/user?oauth=failed'});
			return res.end();
		} );
	}, error => {
		console.log( '- Dashboard: Error while getting the mediawiki token: ' + error );
		res.writeHead(302, {Location: '/user?oauth=failed'});
		return res.end();
	} );
}

module.exports = {
	login: dashboard_login,
	oauth: dashboard_oauth,
	refresh: dashboard_refresh,
	api: dashboard_api,
	verify: mediawiki_oauth
};